787 Open source projects that are alternatives of or similar to Darkspiritz

A tool for fuzzing for ports that allow outgoing connections

Single-file PHP shell

Offensive Reverse Shell (Cheat Sheet)

A tool to hunt for publicly accessible DigitalOcean Spaces

This powershell script has got to run in remote hacked windows host, even for pivoting

A repo with information about security of Ethereum Smart Contracts

./kumasia php simple backdoor

Advanced vulnerability scanning with Nmap NSE

A Collection of articles, videos, blogs, talks and other materials on Node.js Security

Dump exposed HTTP .git fast

Common Web Managers Fuzz Wordlists

Host Header Injection Checker

A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python.

Evaluate the security of S3 buckets

An advanced command-line search engine for Exploit-DB

A Virtual Machine For Assessing Android applications, Reverse Engineering and Malware Analysis

A curated list of awesome infosec courses and training resources.

Easy files and payloads delivery over DNS

Top 20 Kali Linux Related E-books (Free Download)

online port scan scraper

Python network tool, similar to Netcat with custom features.

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

Feature-rich Post Exploitation Framework with Network Pivoting capabilities.

Kubernetes Goat is "Vulnerable by Design" Kubernetes Cluster. Designed to be an intentionally vulnerable cluster environment to learn and practice Kubernetes security.

A tool to fastly get all javascript sources/files

This tool allows one to recover old RDP (mstsc) session information in the form of broken PNG files. These PNG files allows Red Team member to extract juicy information such as LAPS passwords or any sensitive information on the screen. Blue Team member can reconstruct PNG files to see what an attacker did on a compromised host. It is extremely useful for a forensics team to extract timestamps after an attack on a host to collect evidences and perform further analysis.

Know the dangers of credential reuse attacks.

Subdomain Takeover tool written in Go

Network Pivoting Toolkit

A tool to abuse Exchange services

Kali Live Build Scripts

VOIP Security Audit Framework

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

PoC Command and Control Server. Interact with clients through a private web interface, add new users for team sharing and more.

A list of web application security

🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.

👻 A LAN dropbox chatbot controllable via Telegram

Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one place

A PowerShell-based toolkit and framework consisting of a collection of techniques and tradecraft for use in red team, post-exploitation, adversary simulation, or other offensive security tasks.

Captive wifi hotspot bypass tool for Linux

Simple multi threaded tool to extract domain related data from commoncrawl.org

Bifrost C2. Open-source post-exploitation using Discord API

Penetration Testing and Hacking CTF's Swiss Army Knife with: Reverse Shell Handling - Encoding/Decoding - Encryption/Decryption - Cracking Hashes / Hashing

Get GTFOBins info about a given exploit from the command line

Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security professionals & bug-hunters

Infection vector that bypasses AV, IDS, and IPS. (For now...)

OneForAll是一款功能强大的子域收集工具

My personal bug bounty toolkit.

A Python-powered exploitation framework and botnet.

A Security Tool for Enumerating WebSockets

📡 A python program to create a fake AP and sniff data.

🔥 A powerful MongoDB auditing and pentesting tool 🔥

OSINT

Find cloud assets that no one wants exposed 🔎 ☁️

pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.

Our OSCP repo: from popping shells to mental health.

A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.

Fast browser-based network discovery module

This is a multi-use bash script for Linux systems to audit wireless networks.

Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname